CLAIMS 

1 . A method for updating CRL information between distributed components in a PKI 
environment, comprising: 

sequentially receiving a plurality of periodically updated versions of a CRL 
associated with a certificate authority; 

generating a plurality of DeltaCRL data elements by reference to sequentially 
adjacent CRL versions from the received CRL versions; 

providing the DeltaCRLs to a node in a distributed PKI environment; and 

the node sequentially applying the DeltaCRLs to a base CRL to provide 
increasingly updated versions of said CRL, the base CRL being a version of the CRL 
within the timeframe of said periodically updated sequence of CRLs. 

2. The method of claim 1, further comprising generating a hash value corresponding to each 

DeltaCRL, the hash value generated by reference sequentially adjacent CRL versions from the 
received CRL versions. 
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